Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I can see how you don't need a proxy any more, but I don't see how you can bypass TLS without fake root certs, even with eBPF.


new to this program as well but looks really nice.

i think it is still a proxy though unless I’m missing something (beyond the name lol).

[here's a section on macos dealing with certs](https://mitmproxy.org/posts/local-capture/macos/)


here is one example: https://github.com/gojue/ecapture

in short, you can hook calls within SSL libraries (like OpenSSL)


Sure, but that very much depends on the application, no? What if it's statically linked its SSL lib?


you wanted to know how people are bypassing the need for a certificate with eBPF, that is how




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: